Lucene search

[email protected]CVE-2000-1052

HistoryDec 11, 2000 - 5:00 a.m.

CVE-2000-1052

2000-12-1105:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2000-1052

allaire jrun 2.3

ssifilter servlet

source code exposure

nvd

7.7 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.007 Low

EPSS

Percentile

80.0%

JSON

Allaire JRun 2.3 server allows remote attackers to obtain source code for executable content by directly calling the SSIFilter servlet.

CPENameOperatorVersion
macromedia:jrunmacromedia jruneq2.3.x

CPE	Name	Operator	Version
macromedia:jrun	macromedia jrun	eq	2.3.x

References

marc.info/?l=bugtraq&m=97236692714978&w=2

7.7 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.007 Low

EPSS

Percentile

80.0%

JSON